Systems, devices, and methods for unlocking aerosol-generating devices

ABSTRACT

A method comprising maintaining a database of user accounts and aerosol-generating devices associated with the user accounts. The method further comprises receiving an unlock request from a present aerosol-generating device to unlock an unlockable feature of the present aerosol-generating device. The unlock request comprises unique user-identification information identifying a present user account to be associated with the present aerosol-generating device. The method further comprises determining whether the present aerosol-generating device is already associated with any user accounts in the database, transmitting an unlock grant to the present aerosol-generating device to unlock the unlockable feature in response to determination that the present aerosol-generating device is not already associated with any user accounts in the database, and updating the database to associate the present user account with the present aerosol-generating device in response to determination that the present aerosol-generating device is not already associated with any user accounts in the database.

This invention relates to systems, devices, and methods for use inunlocking aerosol-generating devices.

Unauthorized use of aerosol-generating devices, for example, by underageusers (e.g., users that are not lawfully permitted to useaerosol-generating devices) may be challenging to limit or restrict,especially, through resale of aerosol-generating devices between thirdparties such as users or improper retail outlets. For instance, if afirst user purchases an aerosol-generating device from a normal, retailoutlet, the first user may resell the purchased aerosol-generatingdevice to a second user, who may be underage.

Additionally, unauthorized users may use an authorized users'aerosol-generating devices unbeknownst to the authorized users. Forexample, if an authorized user leaves their aerosol-generating deviceunattended, an unauthorized user may utilize the unattendedaerosol-generating device without the authorized user's knowledge.Further, for example, if an authorized user loses theiraerosol-generating device, an unauthorized user may find and utilize thelost aerosol-generating device without the authorized user's knowledge.

Aerosol-generating devices and systems related thereto may providelimited locking functionality. Published PCT patent applicationWO-2019/126805A1 describes vaporizers and vaporizer systems that canunlock a vaporizer to activate operation of the vaporizer based on thedetermined age of a user satisfying a threshold (e.g., legal age). Thevaporizer can determine the age or receive a determination of the agefrom a server and/or application. Further, vaporizer pairing, locking,and/or unlocking may be accessible through an app logged into the useraccount linked to that vaporizer. Still further, a shared private keygenerated by the app may be used to lock/unlock the vaporizer, whichtransmitted to the vaporizer during a lock request. And still further, avaporizer may be configured such that authorized ownership prohibitsvaporizers owned by another account holder to be linked to anotheraccount without device owner explicitly releasing the vaporizer from theoriginal account, thus making stealing more difficult by communicatingthat the vaporizer is paired to another account user. Yet still further,a vaporizer may be configured such that a vaporizer linking users mayonly link a specified number of vaporizers per a time period to preventunderage abusing.

U.S. Pat. No. 9,763,478 describes electronic vapor devices including alocking mechanism that may be controlled by at least one of voiceprofile module, password or passcode module, physical key, fingerprintscanner, iris identification scanner, third party device authorization,or other biometric data, for locking or unlocking. Further, a centralserver can receive both usage information and location information,access unified account and tracking information to determine that boththe vapor device and an electronic communication device are associatedwith the same user.

U.S. Pat. App. Pub. No. 201 5/01 81 945 A1 describes an electronicvaping device that may allow a capability of the electronic vapingdevice to provide vapor to be altered (e.g., disabled, reduced, enabled,or increased) in some situations (e.g., to prevent unauthorized vapingby a child, teenager or other individual). A mobile communication devicemay run a software application that relates to an electronic cigaretteand obtains authorization information from the user and enables thevapor-providing capability of the electronic cigarette if it determinesthat the authorization information is valid and indicative of the userbeing authorized to vape. The mobile communication device may send theauthentication information (or a subset thereof) to a remote server(e.g., a web server) for authentication, which may be particularlyuseful when a third party is to have an influence on the user's abilityto vape.

Ensuring the only authorized users are using the functionality ofaerosol-generating devices may be challenging, especially, if authorizedusers resell their aerosol-generating devices. Additionally, variouslocking and unlocking solutions may be cumbersome for user and sellersto utilize. For example, good faith resell of aerosol-generating devicesbetween users may be difficult if the unlocking and lockingfunctionality is too overburdensome and complicated. Further, variouslocking and unlocking solutions may be difficult for manufacturers toprovide. Still further, some solutions may not provide secure unlockingand locking functionality (for example, improperly encrypted unlockingand locking functionality) that may still be bypassed by sophisticatedunauthorized users (for example, hackers) such that they may still beable to access aerosol-generating devices for which they are notauthorized to do so.

It would be desirable to restrict underage users from usingaerosol-generating devices in a simple, secure, and straightforwardmanner. Further, it would be desirable to restrict third parties fromreselling unlocked aerosol-generating devices to unauthorized users.Still further, it would be desirable to provide a secure, unforgeable,unique, and single-use process to lock or unlock aerosol-generatingdevices using a cryptographic secret known only to the manufacturer'sback-end server. Yet still further, it would be desirable to preventsomeone unilaterally sending an unlocking command to aerosol-generatingdevices in order to maliciously unlock the aerosol-generating devices.

The present invention may be described as providing illustrativeaerosol-generating devices, user interfaces devices, and servers for usein unlocking unlockable features of aerosol-generating devices whenassociated with a single user account. Further, the present inventionmay be described as further providing illustrative devices, systems, andmethods for use in unlocking unlockable features of aerosol-generatingdevices using server-based, cryptographic authentication. Illustrativeuser interface devices may be used to initiate the unlocking processesbetween the aerosol-generating devices and the server, and datatransmitted between the aerosol-generating devices and the server may betransmitted via the user interface devices. For example, a user mayconnect an illustrative aerosol-generating device to an illustrativeserver, for example, in a retail store or via a mobile application, andonce the user has been verified, an unlock process may be initiated.

Additionally, the present invention may be also described as providingillustrative aerosol-generating devices, user interfaces devices, andservers for use in locking already-unlocked features ofaerosol-generating devices (e.g., re-locking unlocked features) whendisassociated or deregistered with a user account. Further, the presentinvention may be described as further providing illustrative devices,systems, and methods for use in locking already-unlocked features ofaerosol-generating devices using server-based, cryptographicauthentication. Illustrative user interface devices may be used toinitiate the locking processes between the aerosol-generating devicesand the server, and data transmitted between the aerosol-generatingdevices and the server may be transmitted via the user interfacedevices. For example, a user may connect an illustrativeaerosol-generating device to an illustrative server, for example, in aretail store or via a mobile application, and once the user has beendisassociated with the aerosol-generating device, a lock process may beinitiated.

According to an aspect of the present invention, there is provided anillustrative aerosol-generating device comprising a controller, thecontroller comprising one or more processors. The controller isconfigured to provide an unlockable feature, transmit an unlock requestto a server to unlock the unlockable feature, receive an unlock grantfrom the server in response to the transmitted unlock request, andunlock the unlockable feature in response to reception of the unlockgrant.

According to another aspect of the present invention, there is providedan illustrative user interface device comprising a display comprising agraphical user interface to allow a user to interact therewith to unlockan unlockable feature of an aerosol-generating device, a communicationinterface to transfer data to and from the aerosol-generating device anda server, and a controller comprising one or more processors andoperably coupled to the display and the communication interface. Thecontroller is configured to receive an unlock request from theaerosol-generating device to unlock the unlockable feature, transmit theunlock request to the server, receive an unlock grant from the server inresponse to the transmitted unlock request, and transmit the unlockgrant to the aerosol-generating device to unlock the unlockable feature.

According to another aspect of the present invention, there is providedan illustrative server for unlocking an unlockable feature of anaerosol-generating device comprising a communication interface totransfer data to and from an aerosol-generating device and a controllercomprising one or more processors and operably coupled to thecommunication interface. The controller is configured to receive anunlock request from the aerosol-generating device to unlock theunlockable feature, and transmit an unlock grant to theaerosol-generating device to unlock the unlockable feature in responseto the transmitted unlock request. Additionally, prior to initiation ofan unlock or lock process, the illustrative server may requestinformation from the aerosol-generating device to initiate thelock/unlock process, and if the server request is valid, theaerosol-generating device may send a lock or unlock request to theserver.

Additionally, it is to be understood that the same or similar processesmay be used herein to lock (e.g., re-lock) already-unlocked features ofthe aerosol-generating devices when, for example, a user becomesdisassociated or deregistered from the aerosol-generating device.

The illustrative aerosol-generating device, user interface device, andserver may advantageously interoperate, or “work together,” to restrictunderage users from using aerosol-generating devices in a simple,secure, and straightforward manner and to restrict third parties fromreselling unlocked aerosol-generating devices to unauthorized users. Inparticular, for example, the transmission of unlock grants from one orboth of a server and a user interface device to the aerosol-generatingdevice may provide simple, secure, and straightforward unlocking ofaerosol-generating devices for authorized users and may assist inrestricting third parties from reselling unlocked aerosol-generatingdevices to unauthorized users. Further, it may be described that thepresent invention addresses the problem of ensuring that only amanufacturer of an aerosol-generating device, or electronic smokingdevice, can unlock a certain feature or functionality of theaerosol-generating device for users who have been verified as theaerosol-generating devices' proprietors before first use or beforeresale.

As described herein, the aerosol-generating device may include or haveone or more unlockable features. For example, the aerosol-generatingdevice may have a single unlockable feature. In this example,preferably, the unlockable feature of the aerosol-generating device isthe ability to use the heating element to heat the aerosol-generatingarticle to generate aerosol therefrom. In other words, the unlockablefeature is the ability of a user to inhale, or puff, aerosol from theaerosol-generating device.

In other examples, the unlockable feature of the aerosol-generatingdevice may be any of variety of different functionality provided by theaerosol-generating device. For instance, the unlockable feature may bethe ability to configure one or more options associated with theaerosol-generating device such as puff concentration, colour of lightemitting elements thereon, sound output options, heater temperature,display options, puff number limit, and haptic feedback (e.g., vibrationoutput) options.

Thereof, the illustrative aerosol-generating device, user interfacedevice, and server may allow one or more unlockable features of theaerosol-generating device to be unlocked. According to one aspect of thepresent invention, the illustrative aerosol-generating device includes acavity to receive an aerosol-generating article, a heating element toheat the aerosol-generating article to generate aerosol therefrom, and apower supply operably coupled to the heating element. It is to beunderstood that the illustrative aerosol-generating devices may beshipped from the manufacturer in a locked state such that the one ormore unlockable features are locked prior to the initial purchase orsale. The illustrative methods, processes, and systems described hereinmay allow such one or more unlockable features to be unlocked only oncestrict verification procedures have been followed. Additionally, suchillustrative aerosol-generating devices may be relocked prior to or onresale.

The aerosol-generating device may include a communication interface totransfer data to and from a user interface device and server and acontroller comprising one or more processors. The communicationinterface may, for example, include at least a telemetry circuit and anantenna, for bidirectional communication with other devices such as userinterface devices, servers, network devices, personal computers, and thelike and with other networks such as the internet and the like. Morespecifically, data and commands may be transmitted and received duringuplink or downlink telemetry between the user interface device and otherdevices and/or networks using the communication interface. In at leastone embodiment, the communication interface is a wireless interfaceusing one or more wireless (e.g., radio frequency) data transmissionprotocols such as, e.g., BLUETOOTH, WI-FI, any protocol in theultra-high frequency (UHF) band, any protocol in the super highfrequency (SHF) band, low frequencies, etc.

The controller of the aerosol-generating device may include one or moreprocessors (e.g., microprocessors) that may operate with associated datastorage, or memory, for access to processing programs or routines andone or more types of data that may be employed to carry out theillustrative methods. For example, processing programs or routinesstored in data storage may include programs or routines for performingstatistics, matrix mathematics, compression algorithms (e.g., datacompression algorithms), standardization algorithms, comparisonalgorithms, or any other processing used to implement the one or moreillustrative methods and processes described herein. Further, forexample, processing programs or routines stored in data storage mayinclude processes and functions to wirelessly transfer data and commandsbetween the user interface device and an aerosol-generating apparatusand to wirelessly transfer data and commands between the user interfacedevice and a server. The data storage, or memory, may be furtherconfigured to store data related to locking and unlocking one or moreunlockable features of the aerosol-generating device and communicatingunlock requests and lock grants between the aerosol-generating device,the user interface device, and the server, and any other data and/orformulas necessary to perform the processes and methods describedherein.

In one or more embodiments, the aerosol-generating device and controllerthereof may be described as being implemented using one or more computerprograms executed on one or more programmable processors that includeprocessing capabilities (e.g., microcontrollers, programmable logicdevices, etc.), data storage (e.g., volatile or non-volatile memoryand/or storage elements), input devices, and output devices. Programcode and/or logic described herein may be applied to input data toperform functionality described herein and generate desired outputinformation. The output information may be applied as input to one ormore other devices and/or processes as described herein or as would beapplied in a known fashion.

The computer program products used to implement the processes describedherein may be provided using any programmable language, e.g., ahigh-level procedural and/or object orientated programming language thatis suitable for communicating with a computer system. Any such programproducts may, for example, be stored on any suitable device, e.g., astorage media, readable by a general or special purpose program,controller apparatus for configuring and operating the computer when thesuitable device is read for performing the procedures described herein.In other words, at least in one embodiment, the user interface devicemay be implemented using a non-transitory computer readable storagemedium, configured with a computer program, where the storage medium soconfigured causes the computer to operate in a specific and predefinedmanner to perform functions described herein.

The exact configuration of the controller of the aerosol-generatingdevice is not limiting and essentially any device capable of providingsuitable computing capabilities and control capabilities to implementthe illustrative methods described herein may be used. In view of theabove, it will be readily apparent that the functionality as describedin one or more embodiments according to the present invention may beimplemented in any manner as would be known to one skilled in the art.As such, the computer language, the controller, or any othersoftware/hardware which is to be used to implement the processesdescribed herein shall not be limiting on the scope of the systems,processes or programs (e.g., the functionality provided by suchprocesses or programs) described herein. The methods and processesdescribed in this disclosure, including those attributed to the systems,or various constituent components, may be implemented, at least in part,in hardware, software, firmware, or any combination thereof. Forexample, various aspects of the techniques may be implemented within oneor more processors, including one or more microprocessors, DSPs, ASICs,FPGAs, CPLDs, microcontrollers, or any other equivalent integrated ordiscrete logic circuitry, as well as any combinations of suchcomponents. When implemented in software, the functionality ascribed tothe systems, devices, and methods described in this disclosure may beembodied as instructions on a computer-readable medium such as RAM, ROM,NVRAM, EEPROM, FLASH memory, magnetic data storage media, optical datastorage media, or the like. The instructions may be executed by one ormore processors to support one or more aspects of the functionalitydescribed in this disclosure. As described herein, an unlock request istransmitted from the aerosol-generating device to a server. In oneexample, the unlock request may be transmitted directly to the server.More specifically, the aerosol-generating device may be wirelesslycoupled to the internet so as to communicate with the server, and a usermay use a user interface (e.g., a graphical user interface, buttons,etc.) on the aerosol-generating device to transmit the unlock request tothe server via the internet. In another example, the unlock request maybe transmitted from the aerosol-generating device to the user interfacedevice, which, in turn, may transmit the unlock request to the server.The user interface device may be wirelessly connected to the internet soas to communicate with the server.

In one or more aspects of the present invention, the user interfacedevice is a cellular telephone. In one or more aspects, the userinterface device is a smart watch. Generally, the user interface devicemay be described as any electronic device including a display forproviding a graphical user interface capable of being interacted with bya user. The user interface device may include a controller and acommunication interface that are similar to that of theaerosol-generating device described herein.

In one or more aspects of the present invention, the illustrative userinterface device comprises a display comprising a graphical userinterface to allow a user to attempt to unlock the unlockable feature.Further, in one or more aspects of the present invention, the controllerof the illustrative user interface device displays, on the graphicaluser interface, an unlockable feature graphical region and allows a userto select the unlockable feature graphical region to initiate theaerosol-generating device to transmit the unlock request thereto.

The display may be operatively coupled to the controller for the outputof data via the display to depict and be used as a user interactable,graphical user interface. The graphical user interface and display maycomprise a touchscreen. The graphical user interface may be described asbeing user interactable because the graphical user interface may beconfigured to allow a user to view and/or manipulate data on thedisplay, to allow a user to interact with user interface device, and thelike. The graphical user interface may be configured to perform any ofthe functionality described herein with respect to unlocking or lockingone or more unlockable features of the aerosol-generating devices.

The unlock request, which may be sent from one or both of theaerosol-generating device and user interface device, includes data, orinformation, so as to provide the functionality for the server to unlockthe aerosol-generating device. Similarly, a lock request, which may besent from one or both of the aerosol-generating device and userinterface device, includes data, or information, so as to provide thefunctionality for the server to lock the aerosol-generating device(e.g., when a user becomes disassociated or deregistered from theaerosol-generating device). The lock request may utilize the same orsimilar processes as described herein with respect to the unlockrequest. In one or more aspects of the present invention, the unlockrequest includes unique device-identification information identifyingthe aerosol-generating device and time-limited nonce informationcorresponding to the unlockable feature. In other words, the unlockrequest may contain both aerosol-generating device-unique informationplus a time limited random value (nonce). The uniquedevice-identification information may be information or data thatidentifies that aerosol-generating device and is unique to each specificaerosol-generating device. In other words, each aerosol-generatingdevice may include unique device-identification information that isspecific to only itself and no other aerosol-generating device. Thus,the unique device-identification information is different for eachaerosol-generating device. The unique device-identification informationmay be a string of alphanumeric characters, a string of hexadecimaldigits, etc. In one or more aspects of the present invention, the uniquedevice-identification information is a serial number. The uniquedevice-identification information is used to ensure, among other things,that received messages, or data transmission, are intended for thetarget aerosol-generating devices.

The time-limited nonce information corresponding to the unlockablefeature may be any data, or information, capable of being used a singletime in a cryptographical communication to the server to stop, orrestrict, the use of the unlock request in the future. In other words,the use of a time-limited nonce information prevents replaying theunlock request, or message, to unlock the aerosol-generating device inthe future. Further, it may be described that time-limited nonceinformation is an arbitrary number that can be used just once in acryptographic communication and is often a random or pseudo-randomnumber issued in an authentication protocol to ensure that oldcommunications cannot be reused in “replay attacks.” The time-limitednonce information may be valid for a validity time period. If an unlockgrant, or message, received from the server is valid, and thetime-limited nonce information has not expired (for example, thevalidity time period has not expired), then the aerosol-generatingdevice may change the status of the unlockable feature (for example,unlock the unlockable feature).

For example, the validity time period may be 5 minutes. In this example,if the aerosol-generating device does not receive an unlock grant after5 minutes, the time-limited nonce information sent in the unlock requestwill be determined to be invalid, and thus, an unlock grant, which mayinclude the time-limited nonce information or derivative thereof, wouldbe invalid.

Conversely, if the unlock grant was received within the 5 minutesvalidity time period, the unlock grant would be valid and would resultin allowing the aerosol-generating device to unlock the unlockablefeature. In other examples, the validity time period may be greater thanor equal to about 7 minutes, greater than or equal to about 10 minutes,less than or equal to about 60 seconds, less than or equal to about 30seconds, less than or equal to about 20 seconds, or less than or equalto 5 seconds.

Thus, in one or more aspects of the present invention, the controller ofthe illustrative aerosol-generating device or illustrative userinterface device is further configured to terminate unlocking theunlockable feature if the unlock grant is not received following avalidity time period after the unlock request is transmitted to theserver. Further, in one or more aspects of the present invention, thevalidity time period is less than or equal to 5 minutes.

After the server has received the unlock request from one or both of theaerosol-generating device and user interface device, the server maytransmit an unlock grant to one or both of the aerosol-generating deviceand user interface device depending on whether the server determineswhether or not to unlock the aerosol-generating device. The unlock grantmay be transmitted, or communicated, to one or both of theaerosol-generating device and the user interface device in a secure andprivate manner. In one or more aspects of the present invention, theunlock grant is encrypted. For example, the unlock grant may beencrypted with a private key known only to the server. Further, theunlock grant may include, among other things, the uniquedevice-identification information and the time-limited nonceinformation. The unique device-identification information may be used toensure that the correct aerosol-generating device has received theunlock grant or message, and the time-limited nonce information may beused, as described herein, to determine whether the unlock grant hasbeen received during the validity time period. In other words, theillustrative server may create, or generate, a lock/unlock message basedon the information from the aerosol-generating device.

In one or more aspects of the present invention, the controller of theillustrative server is further configured to restrict a number of unlockgrants transmitted to the aerosol-generating device. In one or moreaspects of the present invention, the number of unlock grants for eachunique aerosol-generating device is less than or equal to 1, less thanor equal to 3, or less than or equal to 10.

In one or more aspects of the present invention, in response toreception of the unlock grant, the controller of the illustrativeaerosol-generating device decrypts the unlock grant. The unlock grantmay be decrypted by the aerosol-generating device using a public keylocated on all aerosol-generating devices. Thus, in one or more aspectsof the present invention, the unlock grant is decryptable using a publickey stored on the present aerosol-generating device. The use ofasymmetric cryptography ensures that only the manufacturer's servers canlock/unlock an unlockable feature of the aerosol-generating devices andremoves any reliance and knowledge of unique keys on eachaerosol-generating device.

Further, in one or more aspects of the present invention, the controllerof the illustrative aerosol-generating device determines whether thedecrypted unlock grant comprises the unique device-identificationinformation and the time-limited nonce information and unlocks theunlockable feature in response to a determination that the decryptedunlock grant comprises the unique device-identification information andthe nonce information. Thus, the present invention advantageouslyprovides secure, unforgeable, unique, and single-use processes to lockor unlock an aerosol-generating device's functionality using acryptographic secret known only to a manufacturer's server (for example,“back-end” server), which may restrict or stop third parties fromhacking and maliciously unlocking aerosol-generating devices.

The aerosol-generating device may also be temporarily locked by a user,for example, if the user knows that they will not be in possession ofthe aerosol-generating device for a period time. In this way, the usermay protect the aerosol-generating device from being used by others whenthe user is away from the aerosol-generating device. In one or moreaspects of the present invention, the controller of the illustrativeaerosol-generating device or illustrative user interface device isfurther configured to temporarily re-lock the unlockable feature for atemporary locked time period. Further, in one or more aspects of thepresent invention, the temporary locked time period is less than orequal to 24 hours. Still further, in one or more aspects of the presentinvention, the controller of the illustrative aerosol-generating deviceor illustrative user interface device is further configured to allow auser to select an amount of time in the temporary locked time period andto initiate the temporary re-lock. For example, a graphical userinterface may be provided by the user interface device such that a usermay interact with the graphical user interface to select the amount oftime in the temporary locked time period, and also initiate, or start,the temporary locked time period. In other examples, the interface ofthe aerosol-generating device itself (e.g., buttons, display, etc.) maybe used to configure and initiate the temporary locked time period.

The illustrative server may perform one or more various processes toensure that only a single user is associated with eachaerosol-generating device, to restrict already-unlockedaerosol-generating devices from being used by unauthorized users, tolimit a number of aerosol-generating devices unlockable by a singleuser. To do so, the server may include or utilize a database includinguser account information and aerosol-generating device information.According to an aspect of the present invention, there is provided anillustrative method (for example, for use by a server) comprisingmaintaining a database of user accounts and aerosol-generating devicesassociated with the user accounts. Each aerosol-generating device isonly associable with a single user account. The illustrative methodfurther comprises receiving an unlock request from a presentaerosol-generating device to unlock an unlockable feature of the presentaerosol-generating device. The unlock request comprises uniqueuser-identification information identifying a present user account to beassociated with the present aerosol-generating device. The illustrativemethod further comprises determining whether the presentaerosol-generating device is already associated with any user accountsin the database and transmitting an unlock grant to the presentaerosol-generating device to unlock the unlockable feature in responseto determination that the present aerosol-generating device is notalready associated with any user accounts in the database. Theillustrative method still further comprises updating the database toassociate the present user account with the present aerosol-generatingdevice in response to determination that the present aerosol-generatingdevice is not already associated with any user accounts in the database.

According to an aspect of the present invention, there is provided anillustrative computer program product comprising a non-transitorycomputer readable medium having program code portions stored thereon,the program code portions configured, when said program product is runon a computer or network device (for example, a server), to maintain adatabase of user accounts and aerosol-generating devices associated withthe user accounts. Each aerosol-generating device is only associablewith a single user account. The program code portions are furtherconfigured to receive an unlock request from a presentaerosol-generating device to unlock an unlockable feature of the presentaerosol-generating device. The unlock request comprises uniqueuser-identification information identifying a present user account to beassociated with the present aerosol-generating device. The program codeportions are further configured to determine whether the presentaerosol-generating device is already associated with any user accountsin the database and transmit an unlock grant to the presentaerosol-generating device to unlock the unlockable feature in responseto determination that the present aerosol-generating device is notalready associated with any user accounts in the database. The programcode portions are further configured to update the database to associatethe present user account with the present aerosol-generating device inresponse to determination that the present aerosol-generating device isnot already associated with any user accounts in the database.

According to another aspect of the present invention, there is providedan illustrative system (for example, a server) for unlocking unlockablefeatures of aerosol-generating devices comprising a communicationinterface to transfer data to and from aerosol-generating devices and acontroller comprising one or more processors and operably coupled to thecommunication interface. The controller is configured to maintain adatabase of user accounts and aerosol-generating devices associated withthe user accounts. Each aerosol-generating device is only associablewith a single user account. The controller is further configured toreceive an unlock request from a present aerosol-generating device tounlock the unlockable feature. The unlock request comprises uniqueuser-identification information identifying a present user account to beassociated with the present aerosol-generating device. The controller isfurther configured to determine whether the present aerosol-generatingdevice is already associated with any user accounts in the database andtransmit an unlock grant to the present aerosol-generating device tounlock the unlockable feature in response to determination that thepresent aerosol-generating device is not already associated with anyuser accounts in the database. The controller is further configuredupdate the database to associate the present user account with thepresent aerosol-generating device in response to determination that thepresent aerosol-generating device is not already associated with anyuser accounts in the database.

The described database may include a set of user data such as, forexample, a user account associated with each verified user. In one ormore aspects of the present invention, each user account of the databaseis associated with a person who is verified to be of legal age to usethe aerosol-generating devices. The described database may furtherinclude a set of aerosol-generating device data such as, for example,unique device-identification information identifying eachaerosol-generating device (for example, a serial number). The useraccount and unique device-identification information may be associatedwith each other in the database when a user unlocks one or moreunlockable features of the aerosol-generating device upon, for example,purchase of the aerosol-generating device. Conversely, the user accountand unique device-identification information may be disassociated witheach other in the database when a user relocks one or more unlockablefeatures of the aerosol-generating device upon, for example, sale orother disposal of the aerosol-generating device. In other words, theunique device-identification information (for example, a serial number)may be linked to only one user account and the aerosol-generating devicecan only be unlocked (e.g., the one or more unlockable features willunlock) when the unique device-identification information has beenlinked to a user account. Further, when the aerosol-generating device isunlinked with the associated user account, the aerosol-generating devicewill automatically lock (e.g., the one or more unlockable features willlock).

Through the use of the described database, the illustrative method,program code, and system may restrict or stop a user from unlocking adevice already associated with another user thereby restricting lockedaerosol-generating devices being unlocked by other users. Further,through the use of the described database, the illustrative method,program code, and system may limit the number of aerosol-generatingdevices any one single user may unlock thereby addressing the problemthat an authorized buyer may buy multiple devices, unlock such multipledevices using their authorized account, and resell the unlocked devicesto, for example, underage users. In other words, unscrupulous sellerswould be prevented from buying hundreds of aerosol-generating devices,linking them to their account, and then selling the aerosol-generatingdevices to minors. Further, if a seller were to do this, the minorswould not be able to use the user interface device application toconfigure such improperly acquired aerosol-generating devices (forexample, since the minors would not be able to acquire a user accountfor use with the software application on the user interface device).Still further, in the event that an aerosol-generating device isconfiscated from a minor, it would be possible to detect which accountwas used to unlock the aerosol-generating device that was sold to theminor.

In one or more aspects of the present invention, each user account ofthe database is only associable with an allowable number ofaerosol-generating devices, and the illustrative method furthercomprises, the program code portions are further configured to instruct,or the controller is further configured to execute halting thetransmission of the unlock grant and the update of the database if thepresent user account is already associated with the allowable number ofaerosol-generating devices. Further, in one or more aspects of thepresent invention, the allowable number of aerosol-generating devices isless than or equal to 10. In other examples, allowable number ofaerosol-generating devices less than or equal to 25, less than or equalto 15, less than or equal to 5, or less than or equal to 2. In otherwords, only a limited number of devices can be linked with an account.

As described herein, a user may relock their aerosol-generating deviceif, for example, they were to sell or otherwise dispose of theaerosol-generating device. Thus, in one or more aspects of the presentinvention, the illustrative method further comprises, the program codeportions are further configured to instruct, or the controller isfurther configured to execute receiving a lock request from the presentaerosol-generating device to re-lock the unlockable feature. The re-lockrequest may be substantially similar to the unlock request, except thatthe opposite result is desired. Thus, the re-lock request comprises theunique user-identification information identifying the present useraccount associated with the present aerosol-generating device. Thedatabase is then updated to disassociate the present user account fromthe present aerosol-generating device in response to reception of thelock request, and a lock grant may be transmitted to the presentaerosol-generating device to re-lock the unlockable feature in responseto reception of the lock request.

If an unauthorized user attempts to interface with or configure (forexample, using a user interface device) an aerosol-generating device forwhich the user is not associated (thereby, unauthorized), a lock grantmay be transmitted to the aerosol-generating device to lock the one ormore unlockable features of the aerosol-generating device. In this way,unauthorized users may be blocked from using the aerosol-generatingdevice for which they were trying to configure. For instance, in one ormore aspects of the present invention, the illustrative method furthercomprises, the program code portions are further configured to instruct,or the controller is further configured to execute transmitting a lockgrant to the present aerosol-generating device to re-lock the unlockablefeature in response to a user interface device not associated with thepresent user account attempting to configure the presentaerosol-generating device. Additionally, in some examples, prior toautomatic locking of an aerosol-generating device and in response to anattempt at unauthorized access, a warning message may be transmitted tothe user interface device or aerosol-generating device indicating to theuser that they are not authorized to configure or interface with theaerosol-generating device since they are not associated therewith in thedatabase. For instance, in one or more aspects of the present invention,the illustrative method further comprises, the program code portions arefurther configured to instruct, or the controller is further configuredto execute transmitting a warning message to a user interface device inresponse to the user interface device not associated with the presentuser account attempting to configure the present aerosol-generatingdevice. The term “aerosol-producing article” or “aerosol-producingsubstrate” refers to a substrate capable of releasing, upon heating,volatile compounds, which can form an aerosol. The aerosols generatedfrom aerosol-producing substrates of smoking articles according to thepresent disclosure may be visible or invisible and may include vapours(for example, fine particles of substances, which are in a gaseousstate, that are ordinarily liquid or solid at room temperature) as wellas gases and liquid droplets of condensed vapours. One example of aheated-type aerosol-generating article are the 1005 heat sticks, alsoknown as MARLBORO HEATSTICKS, from Phillip Morris International for usein an 1005, heat not burn, aerosol-generating device, also from PhillipMorris International.

The term “aerosol-generating device” refers to a device configured touse, or utilize, an aerosol-generating article that releases volatilecompounds to form an aerosol that may be inhaled by a user.

The term “controller” and “processor” refers to any device or apparatuscapable of providing suitable computing capabilities and controlcapabilities such as, e.g., microprocessors, digital signal processors(DSP), application specific integrated circuits (ASIC),field-programmable gate arrays (FPGA), equivalent discrete or integratedlogic circuitry, or any combination thereof and of providing suitabledata storage capabilities that includes any medium (e.g., volatile ornon-volatile memory, a CD-ROM, magnetic recordable medium such as a diskor tape, etc.) containing digital bits (e.g., encoded in binary,trinary, etc.) that may be readable and/or writeable.

The term “communication interface” refers to any device or apparatuscapable of providing suitable data communication capabilities between anaerosol-generating device and a user interface device such as, e.g.,various telemetry circuits and antennas and may use one or more wired orwireless (e.g., radio frequency) data transmission protocols such as,e.g., BLUETOOTH, WI-FI, any protocol in the ultra-high frequency (UHF)band, any protocol in the super high frequency (SHF) band, lowfrequencies, or combinations thereof.

The term “database” refers to a collection, set, or repository ofqueryable, associable data such as, for example, a relational database.

The invention is defined in the claims. However, below there is provideda non-exhaustive list of non-limiting examples. Any one or more of thefeatures of these examples may be combined with any one or more featuresof another example, embodiment, or aspect described herein.

Example Ex1: A method comprising:

maintaining a database of user accounts and aerosol-generating devicesassociated with the user accounts, wherein each aerosol-generatingdevice is only associable with a single user account;

receiving an unlock request from a present aerosol-generating device tounlock an unlockable feature of the present aerosol-generating device,wherein the unlock request comprises unique user-identificationinformation identifying a present user account to be associated with thepresent aerosol-generating device;

determining whether the present aerosol-generating device is alreadyassociated with any user accounts in the database;

transmitting an unlock grant to the present aerosol-generating device tounlock the unlockable feature in response to determination that thepresent aerosol-generating device is not already associated with anyuser accounts in the database; and

updating the database to associate the present user account with thepresent aerosol-generating device in response to determination that thepresent aerosol-generating device is not already associated with anyuser accounts in the database.

Example Ex2: Computer program product comprising a non-transitorycomputer readable medium having program code portions stored thereon,the program code portions configured, when said program product is runon a computer or network device, to:

maintain a database of user accounts and aerosol-generating devicesassociated with the user accounts, wherein each aerosol-generatingdevice is only associable with a single user account;

receive an unlock request from a present aerosol-generating device tounlock an unlockable feature of the present aerosol-generating device,wherein the unlock request comprises unique user-identificationinformation identifying a present user account to be associated with thepresent aerosol-generating device;

determine whether the present aerosol-generating device is alreadyassociated with any user accounts in the database;

transmit an unlock grant to the present aerosol-generating device tounlock the unlockable feature in response to determination that thepresent aerosol-generating device is not already associated with anyuser accounts in the database; and

update the database to associate the present user account with thepresent aerosol-generating device in response to determination that thepresent aerosol-generating device is not already associated with anyuser accounts in the database.

Example Ex3: A system for unlocking unlockable features ofaerosol-generating devices comprising:

a communication interface to transfer data to and fromaerosol-generating devices; and

a controller comprising one or more processors and operably coupled tothe communication interface, wherein the controller is configured to:

maintain a database of user accounts and aerosol-generating devicesassociated with the user accounts, wherein each aerosol-generatingdevice is only associable with a single user account;

receive an unlock request from a present aerosol-generating device tounlock the unlockable feature, wherein the unlock request comprisesunique user-identification information identifying a present useraccount to be associated with the present aerosol-generating device;

determine whether the present aerosol-generating device is alreadyassociated with any user accounts in the database;

transmit an unlock grant to the present aerosol-generating device tounlock the unlockable feature in response to determination that thepresent aerosol-generating device is not already associated with anyuser accounts in the database; and

update the database to associate the present user account with thepresent aerosol-generating device in response to determination that thepresent aerosol-generating device is not already associated with anyuser accounts in the database.

Example Ex4: The method, computer program product, or system as setforth in any one of Ex1 to Ex3, wherein the aerosol-generating devicecomprises:

a cavity to receive an aerosol-generating article;

a heating element to heat the aerosol-generating article to generateaerosol therefrom; and

a power supply operably coupled to the heating element, wherein theunlockable feature is the ability to use the heating element to heat theaerosol-generating article to generate aerosol therefrom.

Example Ex5: The method, computer program product, or system as setforth in any one of Ex1 to Ex4, wherein each user account of thedatabase is only associable with an allowable number ofaerosol-generating devices, wherein the method further comprises, theprogram code portions are further configured to instruct, or thecontroller is further configured to execute: halting the transmission ofthe unlock grant and the update of the database if the present useraccount is already associated with the allowable number ofaerosol-generating devices.

Example Ex6: The method, computer program product, or system of Ex5,wherein the allowable number of aerosol-generating devices is less thanor equal to 10.

Example Ex7: The method, computer program product, or system as setforth in any one of Ex1 to Ex6, wherein each user account of thedatabase is associated with a person who is verified to be of legal ageto use the aerosol-generating devices.

Example Ex8: The method, computer program product, or system as setforth in any one of Ex1 to Ex7, wherein the method further comprises,the program code portions are further configured to instruct, or thecontroller is further configured to execute:

receiving a lock request from the present aerosol-generating device tore-lock the unlockable feature, wherein the re-lock request comprisesthe unique user-identification information identifying the present useraccount associated with the present aerosol-generating device;

updating the database to disassociate the present user account from thepresent aerosol-generating device in response to reception of the lockrequest;

transmitting a lock grant to the present aerosol-generating device tore-lock the unlockable feature in response to reception of the lockrequest.

Example Ex9: The method, computer program product, or system as setforth in any one of Ex1 to Ex8, wherein the method further comprises,the program code portions are further configured to instruct, or thecontroller is further configured to execute: transmitting a lock grantto the present aerosol-generating device to re-lock the unlockablefeature in response to a user interface device not associated with thepresent user account attempting to configure the presentaerosol-generating device.

Example Ex10: The method, computer program product, or system as setforth in any one of Ex1 to Ex9, wherein the method further comprises,the program code portions are further configured to instruct, or thecontroller is further configured to execute: transmitting a warningmessage to a user interface device in response to the user interfacedevice not associated with the present user account attempting toconfigure the present aerosol-generating device.

Example Ex11: The method, computer program product, or system as setforth in any one of Ex1 to Ex10, wherein the unlock request comprises:unique device-identification information identifying theaerosol-generating device; and time-limited nonce informationcorresponding to the unlockable feature.

Example Ex12: The method, computer program product, or system of Ex11,wherein the unique device-identification is a serial number.

Example Ex13: The method, computer program product, or system as setforth in any one of Ex1 to Ex12, wherein the unlock grant is encrypted.

Example Ex14: The method, computer program product, or system as setforth in any one of Ex1 to Ex13, wherein the unlock grant is decryptableusing a public key stored on the present aerosol-generating device.

Reference will now be made to the drawings, which depict one or moreaspects described in this disclosure. However, it will be understoodthat other aspects not depicted in the drawing fall within the scope andspirit of this disclosure. Like numbers used in the figures refer tolike components, steps and the like. However, it will be understood thatthe use of a number to refer to a component in a given figure is notintended to limit the component in another figure labeled with the samenumber. In addition, the use of different numbers to refer to componentsin different figures is not intended to indicate that the differentnumbered components cannot be the same or similar to other numberedcomponents. The schematic drawings are not necessarily to scale and arepresented for purposes of illustration and not limitation. The drawingsdepict one or more aspects described in this disclosure. However, itwill be understood that other aspects not depicted in the drawing fallwithin the scope and spirit of this disclosure.

Examples will now be further described with reference to the figures inwhich:

FIG. 1 is block diagram of an illustrative system 200 for use lockingand unlocking one or more features of aerosol-generating devices 102;

FIG. 2 is a schematic sectional view of an illustrativeaerosol-generating device 102;

FIG. 3 is a sequence diagram of an illustrative unlocking process 300;and

FIGS. 4-7 are views of an illustrative graphical user interface 250 foruse with a user interface device 201 to lock and unlock anaerosol-generating device.

With reference to FIG. 1 , a functional scheme of an illustrative system200 according to the present invention are depicted. The system 200includes a user interface device 201, an aerosol-generating device 100,and a server 50. The user interface device 201, the aerosol-generatingdevice 100, and a server 50 are physically separate devices but areoperably coupled to each other for data communication therebetween asindicated by the bidirectional lines extending therebetween. The userinterface device 201 is a general-purpose computer (in this example, asmart phone or tablet computer) and includes a controller 202 andassociated data storage 203. The data storage 203 includes programs androutines 204 such as, for example, programs and routines for receivingand transmitting data, or messages, to and from the aerosol-generatingdevice 100 and the server 50 and any other programs or routines toexecute the illustrative methods and processes described herein. Forinstance, data, or messages, related to the locking and unlocking of oneor more unlockable features of the aerosol-generating device 102 may betransmitted between the user interface device 201, theaerosol-generating device 102, and the server 50. The data storage 203further includes data 205 such as unique user-identification informationidentifying a present user account to be associated with the presentaerosol-generating device 102, unique device-identification informationidentifying the aerosol-generating device 102, and various temporarydata utilized during the locking and unlocking processes describedherein.

The user interface device 201 further includes a display 206 comprisinga user-interactable, graphical user interface. The user interface deviceincludes a communication connection to the internet, such as a wirelesslocal area network (for example, Wi-Fi) transceiver. Still withreference to FIG. 1 , the user interface device 201 may be a portabledevice that is configured to establish a connection to the server 50, totransfer/receive data such as, e.g., data related to the locking andunlocking of one or more unlockable features of the aerosol-generatingdevice 102. Data can be transferred and/or received over the internetvia the Wi-Fi transceiver of the user interface device 201.

As noted herein, the system 200 may include aerosol-generating device102 as described with more detail in reference to FIG. 2 . Preferably,the aerosol-generating device 102 comprises a cavity 132 for receivingan aerosol-generating article 104 such as a heat stick and a heater 134,which is configured to provide a source of heat to theaerosol-generating article 104 thus producing inhalable aerosol. Theaerosol-generating device 102 further includes a controller 128comprising one or more processors and associated memory. The controller128 may include functionality to lock or unlock various unlockablefeatures of the aerosol-generating device 102. For example, thecontroller 128 may be able to lock or unlock the ability to use theheating element 134 to heat the aerosol-generating article 104 togenerate aerosol therefrom.

The controller 128 may further include a communication interface suchas, e.g., a wireless communication interface to, for example,communicate with the user interface device 201 and/or server 50 tofacility the unlocking and locking functionality of the one or moreunlockable features described herein. The communication interface of thecontroller 128 may preferably comprise a BLUETOOH interface or mayinclude a WI-FI interface. The aerosol-generating device 102 furthercomprises a power supply 126 to, for example, provide electrical powerto the aerosol-generating device 102 to, among other things, heat theheater to generate aerosol and communicate with the user interfacedevice 201 and the server 50.

A sequence diagram of an illustrative unlocking process 300 is depictedin FIG. 3 . The aerosol-generating device 102, indicated by the leftmostsolid vertical line, may include a locked/unlocked status 150, and atthe beginning of this example, the locked/unlocked status 150 indicatesthat the aerosol-generating device 102 is locked. A device discoveryprocesses 302 may run continuously between the aerosol-generating device102 and the user interface device 201, indicated by the middle solidvertical line, that may allow the user interface device 201 to discoverand connect with the aerosol-generating device 102, regardless ofwhether the aerosol-generating device is locked or unlocked or whetherthe aerosol-generating device is paired with, or associated with, theuser interface device 201. The device discovery processes 302 may allowthe user interface device 201 to pair with, or become associated with,the aerosol-generating device 102. Further, the device discoveryprocesses 302 may allow the aerosol-generating device 102 to beconnected to the user interface device 201, or more specifically, thesoftware application running on the user interface device 201 thatprovides the locking and unlocking functionality described herein. Thedevice discovery processes 302 may exchange information such as uniquedevice-identification information (for example, a serial number)identifying the aerosol-generating device 102.

The user interface device 201 may query 304 the aerosol-generatingdevice 102 to determine the present locked/unlocked status 150 of theaerosol-generating device 102. In one aspect, the query 304 may be aread command to request the data of a portion of memory of theaerosol-generating device 102 that indicates the present locked/unlockedstatus 150. In return, the aerosol-generating device 102 may return 305the locked/unlocked status 150, an error message, or a busy message. Inother words, the user interface device 201 or server 50 may request 304the current status of the unlockable feature it wishes to lock orunlock, and the aerosol-generating device 102 may reply 305 with, amongother things, the present locked/unlocked status 150.

The unlock process 300 may be initiated by the aerosol-generating device102, the user interface device 201, or the server 50. The server 50 isindicated by the rightmost solid vertical line. Regardless of where theunlock process 300 is initiated, an unlock request must ultimately betransmitted to the server 50. In this example, the user interface device201 initiates the unlock by issuing a read command 306 to theaerosol-generating device 102. In response, the aerosol-generatingdevice 102 may send an unlock request 308A to the user interface device201. The unlock request 308A may include, at least, time-limited nonceinformation and unique device-identification information. Thetime-limited nonce information may be a 16-byte integer. Additionally,the unlock request 308A may include a response size. In one or moreaspects, it may be described that if the server 50 or user interfacedevice 201 wishes to change the present locked/unlocked status 150, itrequests the aerosol-generating device's 102 unique information such asits serial number and a unique value (for example, nonce value). Inresponse, the aerosol-device 102 will send such information to one orboth of the user interface device 201 25 and the server 50.

The user interface device 201 may receive the unlock request 308A andmodify the unlock request 308A to, for example, include uniqueuser-identification information identifying a present user account to beassociated with the present aerosol-generating device 102. The modifiedunlock request 308B may be transmitted to the server 50.

The server 50 may include and maintain a database 54 as shown in FIG. 1. The database 54 may include a collection of user account informationand device information, which may be utilized by the lock and unlockprocesses described herein. Although it may be described that the server50 includes or has the database 54, it is to be understood that thedatabase 54 may not physically be located on the server 50, and instead,may be on another server which the server 50 has access thereto.Additionally, the server 50 may not be a single computer server, andinstead, may be a plurality of servers or server clusters. Additionally,the server 50 may simply a virtualized server running on varioushardware platforms or cloud services. The server 50 may receive theunlock request 308A and perform one or more processes with respectthereto 52 according to the present disclosure. For example, the server50 may determine whether the aerosol-generating device 102 is alreadyassociated with another user 52 (for example, by querying the database54). If it is determined the aerosol-generating device 102 is alreadyassociated with another user based on the unique device-identificationinformation, the server 50 will not issue an unlock grant. Further, forexample, the server 50 may determine whether the present user hasalready been associated with the allowable number of aerosol-generatingdevices 52 (for example, by querying the database 54). If it isdetermined that the present user has already been associated with theallowable number of aerosol-generating devices, the server 50 will notissue an unlock grant (e.g., halt the transmission of an unlock grant).Still further, the server 50 may update the database to associate thepresent user account with the present aerosol-generating device 102 ifthe present aerosol-generating device is not already associated with anyuser accounts in the database.

If the server 50 determines that the aerosol-generating device 102 is tobe unlocked, the server 50 may generate an unlock grant 310 and transmitthe unlock grant 310 to the user interface device 201. Additionally, insome examples, the unlock grant 310 could be transmitted directly to theaerosol-generating device 102 from the server 50. The unlock grant 310may be encrypted using the private key known only to the server 50 andmay include the time-limited nonce information and uniquedevice-identification information. In other words, the server 50 createsa string (i.e., the unlock grant) consisting of a lock/unlock request,the aerosol-generating device's unique information, the nonce, and someadditional padding, then encrypts the string using an asymmetric privatekey, and sends the result (i.e., the encrypted string) to one or both ofthe user interface device 201 and aerosol-generating device 102. Theuser interface device 201, in turn, may transmit the unlock grant 312 tothe aerosol-generating device 102. In this example, the user interfacedevice 201 transmits the unlock grant 312 multiple times as indicated bythe letters following the unlock grant 312A, 3128, . . . 312 n.

If the unlock grant 312 is not received within the validity time period199, the unlock process 300 will expire, the aerosol-generating device102 will not be unlocked, and the unlock process 300 will need to bereinitiated. In this example, the unlocked grant 312 was received withinthe valid time period 199 resulting in the aerosol-generating device 102becoming unlocked as indicated by the present locked/unlocked status150. In other words, the aerosol-generating device 102 may initiate avalidity timer during which the unlock process must complete, and if theprocedure is unsuccessful or not completed within the validity timeperiod, the current process 300 is invalidated and must be restartedfrom the beginning.

For example, the aerosol-generating device 102 may receive the encryptedstring (i.e., unlock grant) and decrypt it using a public key of theserver 50, which may be stored on all aerosol-generating devices 102.The aerosol-generating device 102 may verify if the decrypted stringrespects a predefined format and contains the original nonce, the uniquedevice information, and requests a change in status of the presentlocked/unlocked status 150 associated with the nonce.

If such conditions are met and the validity time period has not expired,then the aerosol-generating device 102 changes the presentlocked/unlocked status 150.

Additionally, the user interface device 201 may continue to periodicallypull 290 on the status of the aerosol-generating device 102 querying 304the aerosol-generating device 102 to determine the presentlocked/unlocked status 150 thereof. In particular, the periodicallypulling 290 may include a query 304 from the user interface device 201and, in response, the locked/unlocked status 150, an error message, or abusy message, may be returned 305 from the aerosol-generating device102.

It is to be understood that although an unlock process 300 is depictedin FIG. 3 , that a lock or relock process may be performed in a similarmanner. For example, the user interface device 201 may initiate a lockrequest that gathers the same or similar information such as the uniquedevice-identification information, unique user-identificationinformation, time-limited nonce information, etc. to send to the server50. In turn, the server 50 will issue a lock grant to lock theaerosol-generating device 102.

The illustrative user interface device 201 including a display 206depicting a graphical user interface 250 is shown in FIGS. 4-7 . In FIG.4 , the graphical user interface 250 includes a lock status graphicalelement 251, which is configured to indicate whether the connectedaerosol-generating device is in a locked or unlocked state (e.g., one ormore unlockable features of the aerosol-generating device are in alocked or unlocked state). As shown in FIG. 4 , the lock statusgraphical element 251 depicts an unlocked state as shown by a graphicalrepresentation of an unlocked padlock. Thus, the connectedaerosol-generating device is unlocked, and if the unlockable feature isthe ability to use the heating element to heat the aerosol-generatingarticle to generate aerosol therefrom, then a user may use theaerosol-generating device to use the heating element to heat theaerosol-generating article to generate aerosol therefrom.

The graphical user interface 250 further includes device status message252 that indicates whether an aerosol-generating device is connected. Asshown, the device status message 252 reads “Device Connected,” whichindicates that an aerosol-generating device is presently connected tothe user interface device 201 such that the aerosol-generating devicemay be configured or locked/unlocked using the user interface device201. Conversely, the device status message 252 may read “Device NotConnected” to indicate that an aerosol-generating device is notpresently connected to the user interface device 201. The graphical userinterface 250 further includes aerosol-generating device graphicalrepresentation 254 depicts the associated aerosol-generating device to,for example, indicate the type of aerosol-generating device that ispresently connected to the user interface device 201.

The graphical user interface 250 of the user interface device 201 may beused to configure the aerosol-generating device and lock/unlock theunlockable features of the aerosol-generating device. To do so, a usermay select (e.g., touch, click etc.) the change settings graphical area256, which is depicted as the word “Settings” with an arrow pointing tothe right. Furthermore, the graphical user interface 250 may include atoolbar region 258 that includes multiple selectable areas to traverse agraphical user interface 250 (e.g., to traverse the aerosol-generatingdevice software application running on the graphical user interface250). For example, the toolbar region 258 may include, among otherthings, a devices area and a user account area. The devices area mayallow a user to configure a connected aerosol-generating device, and theuser account area may allow a user to configure their user account

A user may wish to temporarily lock their aerosol-generating deviceusing the user interface device 201. To do so, a user may select thelock status graphical element 251 or the text located proximate theretothat reads “Lock.” Upon selection of the lock status graphical element251, a lock graphical region 260 may be depicted in the graphical userinterface 250 as shown in FIG. 5 . A user may use the lock graphicalregion 260 to select an amount of time in or for the temporary lockedtime period. In this example, a locked time period selection area 262may be displayed, which includes a list of scrollable time values. 10hours, 15 hours, and 21 hours are presently shown, with 15 hours beingpresently selected as indicated as being centered and bolded. In oneaspect, a user may “swipe up” or “swipe down” on the locked time periodselection area 262 to display other time values arranged in aconsecutive fashion. Once the user has found and selected the desiredlocked time period using the locked time period selected area 262, auser may select the lock initiation graphical element 264 to initiatethe temporary lock or re-lock.

Additionally, a user may wish to lock their aerosol-generating deviceusing the user interface device 201 prior to resell or transfer of theiraerosol-generating device, which may also be completed by selecting thelock status graphical element 251 and using the lock graphical region260 to lock the aerosol-generating device an indefinite period of timeuntil another user attempts to unlock the aerosol-generating deviceusing an authorized user account. For example, instead of selecting alocked time period, the user may use locked time period selection area262 to select an indefinite time period until another authorized userunlocks the aerosol-generating device.

Upon selection of the lock initiation graphical element 264 to initiatethe temporary lock or re-lock, a temporary lock status message 270 maybe displayed on the graphical user interface 250 as shown in FIG. 6 .The temporary lock status message 270 may indicate that the associatedaerosol-generating device is locked textually. As shown, the temporarylock status message 270 reads “Device is Locked.” Additionally,temporary lock status message 270 may also indicate the amount of timeremaining during the temporary lock time period. As shown, the temporarylock status message 270 reads “It will unlock in 15 hours” indicatingthat the temporary locked status of the aerosol-generating device willexpire in 15 hours.

Further, since the associated aerosol-generating device is now locked(e.g., one or more unlockable features thereof are temporarily locked),the lock status graphical element 251 now depicts a locked state asshown by a graphical representation of a locked padlock. Thus, theconnected aerosol-generating device is locked, and if the unlockablefeature is the ability to use the heating element to heat theaerosol-generating article to generate aerosol therefrom, then a usermay not be able use the aerosol-generating device to use the heatingelement to heat the aerosol-generating article to generate aerosoltherefrom.

When an associated aerosol-generating device is locked, a user maydesire to unlock the aerosol-generating device (e.g., unlock one or moreunlockable features thereof). To do so, a user may select the lockstatus graphical element 251 or the text located proximate thereto thatreads “Unlock.” Upon selection of the lock status graphical element 251,an unlock graphical region 280 may be depicted in the graphical userinterface 250 as shown in FIG. 7 . A user may use the unlock graphicalregion 280 to select either an unlock initiation graphical element 282(e.g., button) or a cancel unlock graphical element 284. Selection ofthe unlock initiation graphical element 282 will initiate the unlockprocesses as described herein. For example, an unlock request may begenerated by the aerosol-generating device and the user interface device201 and transmitted to a server in an attempt to acquire an unlockgrant.

For the purpose of the present description and of the appended claims,except where otherwise indicated, all numbers expressing amounts,quantities, percentages, and so forth, are to be understood as beingmodified in all instances by the term “about”. Also, all ranges includethe maximum and minimum points disclosed and include any intermediateranges therein, which may or may not be specifically enumerated herein.Further, all scientific and technical terms used herein have meaningscommonly used in the art unless otherwise specified. The definitionsprovided herein are to facilitate understanding of certain terms usedfrequently herein. As used herein, the singular forms “a”, “an”, and“the” encompass embodiments having plural referents, unless the contentclearly dictates otherwise. As used herein, “or” is generally employedin its sense including “and/or” unless the content clearly dictatesotherwise. The term “and/or” means one or all of the listed elements ora combination of any two or more of the listed elements. As used herein,“have”, “having”, “include”, “including”, “comprise”, “comprising” orthe like are used in their open-ended sense, and generally mean“including, but not limited to”. It will be understood that “consistingessentially of”, “consisting of”, and the like are subsumed in“comprising,” and the like. The words “preferred” and “preferably” referto embodiments of the invention that may afford certain benefits, undercertain circumstances. However, other embodiments may also be preferred,under the same or other circumstances. Furthermore, the recitation ofone or more preferred embodiments does not imply that other embodimentsare not useful, and is not intended to exclude other embodiments fromthe scope of the disclosure, including the claims.

1. A method comprising: maintaining a database of user accounts andaerosol-generating devices associated with the user accounts, whereineach aerosol-generating device is only associable with a single useraccount; receiving an unlock request from a present aerosol-generatingdevice to unlock an unlockable feature of the present aerosol-generatingdevice, wherein the unlock request comprises unique user-identificationinformation identifying a present user account to be associated with thepresent aerosol-generating device; determining whether the presentaerosol-generating device is already associated with any user accountsin the database; transmitting an unlock grant to the presentaerosol-generating device to unlock the unlockable feature in responseto determination that the present aerosol-generating device is notalready associated with any user accounts in the database; and updatingthe database to associate the present user account with the presentaerosol-generating device in response to determination that the presentaerosol-generating device is not already associated with any useraccounts in the database. 2-3. (canceled)
 4. The method of claim 1,wherein the aerosol-generating device comprises: a cavity to receive anaerosol-generating article; a heating element to heat theaerosol-generating article to generate aerosol therefrom; and a powersupply operably coupled to the heating element, wherein the unlockablefeature is the ability to use the heating element to heat theaerosol-generating article to generate aerosol therefrom.
 5. The methodof claim 1, wherein each user account of the database is only associablewith an allowable number of aerosol-generating devices, wherein themethod further comprises halting the transmission of the unlock grantand the update of the database if the present user account is alreadyassociated with the allowable number of aerosol-generating devices. 6.The method of claim 5, wherein the allowable number ofaerosol-generating devices is less than or equal to
 10. 7. The method ofclaim 1, wherein each user account of the database is associated with aperson who is verified to be of legal age to use the aerosol-generatingdevices.
 8. The method of claim 1, wherein the method further comprises:receiving a lock request from the present aerosol-generating device tore-lock the unlockable feature, wherein the re-lock request comprisesthe unique user-identification information identifying the present useraccount associated with the present aerosol-generating device; updatingthe database to disassociate the present user account from the presentaerosol-generating device in response to reception of the lock request;and transmitting a lock grant to the present aerosol-generating deviceto re-lock the unlockable feature in response to reception of the lockrequest.
 9. The method of claim 1, wherein the method further comprisestransmitting a lock grant to the present aerosol-generating device tore-lock the unlockable feature in response to a user interface devicenot associated with the present user account attempting to configure thepresent aerosol-generating device.
 10. The method of claim 1, whereinthe method further comprises transmitting a warning message to a userinterface device in response to the user interface device not associatedwith the present user account attempting to configure the presentaerosol-generating device.
 11. The method of claim 1, wherein the unlockrequest comprises: unique device-identification information identifyingthe aerosol-generating device; and time-limited nonce informationcorresponding to the unlockable feature.
 12. The method of claim 11,wherein the unique device-identification is a serial number.
 13. Themethod of claim 1, wherein the unlock grant is encrypted.
 14. The methodof claim 1, wherein the unlock grant is decryptable using a public keystored on the present aerosol-generating device.
 15. A system forunlocking unlockable features of aerosol-generating devices comprising:a communication interface to transfer data to and fromaerosol-generating devices; and a controller comprising one or moreprocessors and operably coupled to the communication interface, whereinthe controller is configured to: maintain a database of user accountsand aerosol-generating devices associated with the user accounts,wherein each aerosol-generating device is only associable with a singleuser account; receive an unlock request from a presentaerosol-generating device to unlock the unlockable feature, wherein theunlock request comprises unique user-identification informationidentifying a present user account to be associated with the presentaerosol-generating device; determine whether the presentaerosol-generating device is already associated with any user accountsin the database; transmit an unlock grant to the presentaerosol-generating device to unlock the unlockable feature in responseto determination that the present aerosol-generating device is notalready associated with any user accounts in the database; and updatethe database to associate the present user account with the presentaerosol-generating device in response to determination that the presentaerosol-generating device is not already associated with any useraccounts in the database.
 16. The system of claim 15, wherein theaerosol-generating device comprises: a cavity to receive anaerosol-generating article; a heating element to heat theaerosol-generating article to generate aerosol therefrom; and a powersupply operably coupled to the heating element, wherein the unlockablefeature is the ability to use the heating element to heat theaerosol-generating article to generate aerosol therefrom.
 17. The systemof claim 15, wherein each user account of the database is onlyassociable with an allowable number of aerosol-generating devices,wherein the controller is further configured to halt the transmission ofthe unlock grant and the update of the database if the present useraccount is already associated with the allowable number ofaerosol-generating devices.
 18. The system of claim 17, wherein theallowable number of aerosol-generating devices is less than or equal to10.
 19. The system of claim 15, wherein each user account of thedatabase is associated with a person who is verified to be of legal ageto use the aerosol-generating devices.
 20. The system of claim 15,wherein the controller is further configured to: receive a lock requestfrom the present aerosol-generating device to re-lock the unlockablefeature, wherein the re-lock request comprises the uniqueuser-identification information identifying the present user accountassociated with the present aerosol-generating device; update thedatabase to disassociate the present user account from the presentaerosol-generating device in response to reception of the lock request;and transmit a lock grant to the present aerosol-generating device tore-lock the unlockable feature in response to reception of the lockrequest.
 21. The system of claim 15, wherein the controller is furtherconfigured to transmit a lock grant to the present aerosol-generatingdevice to re-lock the unlockable feature in response to a user interfacedevice not associated with the present user account attempting toconfigure the present aerosol-generating device.
 22. The system of claim15, wherein the controller is further configured to transmit a warningmessage to a user interface device in response to the user interfacedevice not associated with the present user account attempting toconfigure the present aerosol-generating device.
 23. The system of claim15, wherein the unlock request comprises: unique device-identificationinformation identifying the aerosol-generating device; and time-limitednonce information corresponding to the unlockable feature.
 24. Thesystem of claim 23, wherein the unique device-identification is a serialnumber.
 25. The system of claim 15, wherein the unlock grant isencrypted.
 26. The system of claim 15, wherein the unlock grant isdecryptable using a public key stored on the present aerosol-generatingdevice.
 27. Computer program product comprising a non-transitorycomputer readable medium having program code portions stored thereon,the program code portions configured, when said program product is runon a computer or network device, to: maintain a database of useraccounts and aerosol-generating devices associated with the useraccounts, wherein each aerosol-generating device is only associable witha single user account; receive an unlock request from a presentaerosol-generating device to unlock an unlockable feature of the presentaerosol-generating device, wherein the unlock request comprises uniqueuser-identification information identifying a present user account to beassociated with the present aerosol-generating device; determine whetherthe present aerosol-generating device is already associated with anyuser accounts in the database; transmit an unlock grant to the presentaerosol-generating device to unlock the unlockable feature in responseto determination that the present aerosol-generating device is notalready associated with any user accounts in the database; and updatethe database to associate the present user account with the presentaerosol-generating device in response to determination that the presentaerosol-generating device is not already associated with any useraccounts in the database.